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Trust 


•  Webster’s  Dictionary:  TRUST,  -noun: 

-  (1)  Assured  reliance  on  the  character,  ability,  strength,  or  truth  of 
someone  or  something. 

-  (2)  One  in  which  confidence  is  placed. 


•  Our  Definition: 

-  Trust  is  the  expectation  of  a  trustor  with  respect  to 
certain  properties  of  a  trustee  or  her  actions  under  a 
specified  context  and  time,  considering  the  risks, 
incentives,  and  historical  information. 
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Trust  Management 


f  Policy-Based  Trust  Mgmt.  (PTM)  \ 

(  Rep-Based  Trust  Mgmt.  (RTM)  \ 

•  Effective  for  delegated 
credentials  and  access 
enforcement 

•  Can’t  handle  uncertainty  and 
partial  information 

•  Quantifies  trust  relationships 

•  No  delegation  (i.e.,  reputation 
no-transferable) 

•  No  enforcement 

QUANTITATIVE  TRUST  MANAGEMENT 


(QTM)\ 


•  Combine  PTM  and  RTM 

•  Dynamic  interpretation  of  authorization 
policies  for  access  control  decisions  based  on 
upon  evolving  reputations  of  the  entities 
involved 
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QTM  Challenges 


•  What  are  some  metrics  for  effectiveness  of  TM  systems? 

•  How  do  we  incorporate  uncertainty  in  policy-based  TM’s? 

•  How  do  we  incorporate  dynamism  in  policy-based  TM’s? 

•  How  can  we  model  adversaries  as  economic  agents  and  develop  a 
game-theoretic  view  of  trust  management? 

•  Can  we  build  new  reputation  management  systems  based  on  sound 
principles? 

•  What  is  the  proper  way  to  mathematically  combine  reputations? 

-  Involves  integration  of  logical/quantitative/probabilistic  reasoning 

-  Is  there  a  means  to  build  consensus  from  distributed  observations? 

•  How  do  we  integrate  policy-based  and  reputation-based  TMs? 

•  What  are  some  important  applications  of  TM  systems? 


6/10/10 


5?  Penn 

’v  Engineering 


ONR  MURI  Review 


5 


Quantitative  Trust  Management  (QTM) 


Compliance  Value 
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Policy-based 
Trust  Management 


KeyNote  PTM  Systems 

Permission-to-Speak 

Dynamic  Trust  Management 
Arachne 
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Collaboration 


Reputation-based 
Trust  Management 


(RTM) 


k  A 


Evaluating  RTM  Systems 


Blacklist  as  Feedback  of 
Reputation  Management 
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Team  Efforts 


•  Several  Research  Collaborations 

-  Distributed  TM,  Dynamic  TM,  Spatio-Temporal  Reputations,  ... 

-  Keynote-based  QTM  (QuanTM) 

•  Many  Tele-conferences  and  Student  Visits 

-  Penn  ->  GA  Tech,  Columbia  ->  Penn,  GA  Tech  ->  Penn 

•  Collaborative  case  studies 

-  SPAM  list  and  BGP  security  as  QTM  application 

•  PhD  Dissertation  Committees 

-  Matt  Burnside  (Columbia) 

-  David  Dagon  (G A  Tech) 

-  Andrew  West  (Penn) 
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Education 


•  Courses 

-  Integrated  material  into  COMS  W4180  course  (Columbia) 

-  CIS  125  new  course  on  understanding  of  existing  and  emerging 
technologies,  along  with  the  political,  societal  and  economic  impacts  of 
those  technologies  (Penn) 

-  Integrated  material  into  CIS  551  (Penn) 

-  Material  on  botnet  detection  added  to  Network  Security  classes: 
undergraduate  cs4237,  and  graduate  cs6262  (GA  Tech) 

-  3  senior  design  projects  (Penn) 

•  Workforce  training 

-  3  post-docs 

-  10  Ph.D.  students 

-  1  Masters  and  1  undergraduate 
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•  Publications 

-  7  journal  articles 

-  2  book  chapter 

-  33  conference  papers 

•  Selected  papers 

-  M.  Blaze,  S.  Kannan,  I.  Lee,  O.  Sokolsky,  J.M.  Smith,  A.D.  Keromytis,  and  W.  Lee. 
Dynamic  Trust  Management,  In  IEEE  Computer  Magazine,  vol.  42,  no.  2,  pp.  44  - 
52,  February  2009. 

-  A.G.  West,  A.J.  Aviv,  J.  Chang,  V.  Prabhu,  M.  Blaze,  S.  Kannan,  I.  Lee,  J.M.  Smith, 
and  O.  Sokolsky.  QuanTM:  A  Quantitative  Trust  Management  System.  EUROSEC 
2009,  pp.  28-35. 

-  A.G.  West,  I.  Lee,  S.  Kannan,  and  O.  Sokolsky.  An  Evaluation  Framework  for 
Reputation  Management  Systems.  In  Trust  Modeling  and  Management  in  Digital 
Environments:  From  Social  Concept  to  System  Development  (Zheng  Yan,  ed.), 
2009. 
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•  Beyond  conference  talks 

-  7  invited  and  2  keynote  talks,  6  panels 

•  Working  with  Symantec  to  determine  modus  operandi  of  rogue 
Antivirus  sites  (and  why  users  trust  them) 

-  Interim  Symantec  Threat  Report  (ISTR),  Oct  09 

•  Working  with  Damballa  to  deliver  botnet  detection  and  mitigation 
technologies  to  government  and  enterprise  customers 

-  Botnet  detection  system  such  as  BotMiner  malware  analysis  technologies, 
and  the  DNS-based  monitoring  technologies 

-  Several  Ph.D.  students  did  summer  internship 

-  Several  Damballa  researchers  were  former  students  at  Georgia  Tech,  and 
still  participate  in  some  of  the  research  meetings  at  Georgia  Tech 

•  Matt  Burnside  now  working  for  NSA 

•  QTM  ideas  used  in  ONR-supported  "Networks  Opposing  Botnets" 
(NoBot)  project,  withPenn,  Harvard  and  Princeton 
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Updates  since  Nov  2009 


•  Award 

-  Georgia  Tech  Sigma  Xi  Faculty  Best  Paper  Award 

•  Publications 

-  J.  Chang,  K.  Venkatasubramanian,  A.  G.  West,  S.  Kannan,  I.  Lee,  B.  T.  Loo,  O.  Sokolsky  "AS-CRED: 
Reputation  Service  For  Trustworthy  Inter-Domain  Routing",  University  of  Pennsylvania  Technical  Report,  CIS- 
MS-10-17,  April,  2010 

-  "An  Analysis  of  Rogue  AV  Campaigns"Marco  Cova,  Corrado  Leita,  Olivier  Thonnard,  Angelos  D.  Keromytis, 
and  Marc  Dacier.  To  appear  in  Proceedings  of  the  13th  International  Symposium  on  Recent  Advances  in 
Intrusion  Detection  (RAID).  September  2010,  Ottawa,  Canada. 

-  Detecting  Malicious  Flux  Service  Networks  through  Passive  Analysis  of  Recursive  DNS  Traces.  Roberto 
Perdisci,  Igino  Corona,  David  Dagon,  and  Wenke  Lee.  In  Proceedings  of  The  25th  Annual  Computer  Security 
Applications  Conference  (ACSAC  2009),  Honolulu,  HI,  December  2009. 

-  On  the  Incoherencies  in  Web  Browser  Access  Control  Policies.  Kapil  Singh,  Alexander  Moshchuk,  Helen  J. 
Wang,  and  Wenke  Lee.  In  Proceedings  of  The  2010  IEEE  Symposium  on  Security  and  Privacy,  Oakland,  CA, 
May  2010. 

-  Building  a  Dynamic  Reputation  System  for  DNS.  Manos  Antonakakis,  Roberto  Perdisci,  David  Dagon,  Wenke 
Lee,  and  Nick  Feamster.  In  Proceedings  of  the  19th  USENIX  Security  Symposium,  Washington  DC,  August, 
2010  (to  appear). 

-  J.  Chang,  K.  Venkatasubramanian,  A.  G.  West,  S.  Kannan,  I.  Lee,  B.  T.  Loo,  O.  Sokolsky  "AS-CRED: 
Reputation  Service  For  Trustworthy  Inter-Domain  Routing",  Submitted  for  publication,  2010. 
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Publications  (con’d) 


“Detecting  Wikipedia  Vandalism  via  Spatio-Temporal  Analysis  of  Revision  Metadata”.  Andrew  G.  West,  Sampath 
Kannan,  and  Insup  Lee.  In  EUROSEC  ‘10:  Proceedings  of  the  Third  European  Workshop  on  System  Security,  pp. 
22-28,  Paris,  France.  April  2010. 

Book  Chapters 

“An  Evaluation  Framework  for  Reputation  Management  Systems”.  Andrew  G.  West,  Insup  Lee,  Sampath  Kannan, 
and  Oleg  Sokolsky.  Book  chapter  in  Trust  Modeling  and  Management  in  Digital  Environments:  From  Social  Concept 
to  System  Development  (Zheng  Yan,  ed.),  pp.  282-308.  Information  Science  Reference,  Hershey,  PA,  USA,  2010. 

“Detecting  Wikipedia  vandalism  via  spatio-temporal  analysis  of  revision  metadata”.  Andrew  G.  West,  Sampath 
Kannan,  and  Insup  Lee.  Technical  Report  MS-CIS-10-05,  University  of  Pennsylvania,  Dept,  of  Computer  and 
Information  Science,  February  2010. 

“Mitigating  spam  using  spatio-temporal  reputation”.  Andrew  G.  West,  Adam  J.  Aviv,  Jian  Chang,  and  Insup  Lee. 
Technical  Report  MS-CIS-10-04,  University  of  Pennsylvania,  Department  of  Computer  and  Information  Science, 
February  2010. Demonstrations,  Tutorials,  and  Posters 

“STiki:  An  anti-vandalism  tool  for  Wikipedia  using  spatio-temporal  analysis  of  revision  metadata”.  Andrew  G.  West, 
Sampath  Kannan,  and  Insup  Lee.  Formal  demonstration.  To  appear  in  WikiSym  ‘10:  Proceedings  of  the  Sixth 
International  Symposium  on  Wikis  and  Open  Collaboration,  Gda'nsk,  Poland.  July  2010. 

“Spatio-temporal  analysis  of  Wikipedia  metadata  and  the  STiki  anti-vandalism  tool”.  Andrew  G.  West,  Sampath 
Kannan,  and  Insup  Lee.  Poster.  To  appear  in  WikiSym  ‘10:  Proceedings  of  the  Sixth  International  Symposium  on 
Wikis  and  Open  Collaboration,  Gda'nsk,  Poland.  July  2010.Talks  (without  associated  proceedings) 

"STiki:  An  anti-vandalism  tool  for  Wikipedia".  Andrew  G.  West,  Sampath  Kannan,  and  Insup  Lee.  Talk.  To  be 
presented  at  WikiMania  '10,  Gda'nsk,  Poland.  July  2010. 
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Research  highlights 


•  Project  Overview,  Insup  Lee  (PI) 

•  QuanTM  Architecture  for  Web  Services,  Insup  Lee 

•  Reflections  on  Trust  Evidence,  Jonathan  M.  Smith 

•  Distributed  Trust  Management  and  Rogue  AV  Software,  Angelos  Keromytis 

•  Dynamic  IP  Reputations  from  DNS,  Wenke  Lee 

•  Detecting  Wikipedia  Vandalism  via  Spatio-Temporal  Analysis  of  Revision 
Metadata ,  Andrew  West 

•  AS-CRED:  Reputation  based  Trustworthy  Inter-domain  Routing,  Krishna 
Venkatasubramanian 

•  Permission  to  Speak:  A  Novel  Formal  Foundation  for  Access  Control,  Oleg 
Sokolsky 

•  Reputations  and  Games,  Sampath  Kannan 

•  Demo  Session 

•  Future  Work  and  Discussion,  Insup  Lee 
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